271271
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
The IPsec module in the VPN component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service (module crash) via an IPsec Phase 2 proposal that…
|
CWE-20
Improper Input Validation
|
CVE-2007-6094
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271272
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might …
|
CWE-200
Information Exposure
|
CVE-2007-6095
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271273
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of "administrators with less privileges," which might allow attackers to read these passwords via unknown v…
|
CWE-255
Credentials Management
|
CVE-2007-6096
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271274
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
Unspecified vulnerability in the ICMP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 has unknown impact and remote attack vectors, related to ICMP packets that are "incorre…
|
NVD-CWE-noinfo
|
CVE-2007-6097
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271275
|
- |
|
ingate
|
ingate_firewall ingate_siparator
|
Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-cons…
|
NVD-CWE-Other
|
CVE-2007-6098
|
2008-11-15 16:03 |
2007-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271276
|
- |
|
claws_mail
|
claws_mail_tools
|
sylprint.pl in claws mail tools (claws-mail-tools) allows local users to overwrite arbitrary files via a symlink attack on the sylprint.[USER].[PID] temporary file.
|
CWE-59
Link Following
|
CVE-2007-6208
|
2008-11-15 16:03 |
2007-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271277
|
- |
|
ossigeno
|
cms
|
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b)…
|
CWE-20
Improper Input Validation
|
CVE-2007-6218
|
2008-11-15 16:03 |
2007-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271278
|
- |
|
work_system_e-commerce
|
work_system_e-commerce
|
Unspecified vulnerability in WORK system e-commerce before 4.0.2 has unknown impact and attack vectors related to "Ajax pages."
|
NVD-CWE-noinfo
|
CVE-2007-5801
|
2008-11-15 16:02 |
2007-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271279
|
- |
|
ssreader
|
ultra_star_reader
|
Buffer overflow in the register function in Ultra Star Reader ActiveX control in SSReader allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild. NOTE: t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-5807
|
2008-11-15 16:02 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271280
|
- |
|
contentcustomizer
|
contentcustomizer
|
dialog.php in CONTENTCustomizer 3.1mp and earlier allows remote attackers to obtain sensitive author credentials by making a request with an editauthor action, then reading the value of the newlocalp…
|
CWE-200
Information Exposure
|
CVE-2007-5816
|
2008-11-15 16:02 |
2007-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|